CVE-2015-0962

Name of the Vulnerable Software and Affected Versions Barracuda Web Filter versions 7.x through 8.0.x Barracuda Web Filter version 8.1.0.004 and earlier

Description The issue allows remote attackers to conduct man-in-the-middle attacks against SSL sessions by leveraging the trust relationship of a root Certification Authority certificate. This certificate is used across different customers' installations when SSL Inspection is enabled.

Recommendations For Barracuda Web Filter versions 7.x through 8.0.x, update to version 8.1.0.005 or later. For Barracuda Web Filter version 8.1.0.004 and earlier, update to version 8.1.0.005 or later. As a temporary workaround, consider disabling SSL Inspection until a patch is available.